Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: g9/hD2W0Tw0dbohg+IkfJFi5r3gwiEoU4yNlFU9leLU=
Subject key identifier: 64:67:9C:DF:D0:DE:2E:E8:E1:DB:14:53:84:78:D1:28:59:EC:D5:53
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 0198D5BC1EC4BE7201F8E2BD516523A130E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 13E8
Signing time: Sat 23 Aug 2025 07:02:12 +0000
Manifest this update: Sat 23 Aug 2025 07:02:12 +0000
Manifest next update: Sun 24 Aug 2025 07:02:12 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: aRgNSspuM2VBRNj5SPXW5Qe6USkGhrqMH6Qlw0odiUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:1e:c4:be:72:01:f8:e2:bd:51:65:23:a1:30:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Aug 23 07:02:12 2025 GMT
Not After : Aug 24 07:02:12 2025 GMT
Subject: CN=64679cdfd0de2ee8e1db14538478d12859ecd553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:f3:a6:cc:76:97:5a:ca:11:06:49:20:44:
6d:3f:03:fa:83:07:f6:31:38:37:b6:87:ae:a5:2d:
d9:69:39:65:bc:0d:e5:81:9f:f6:b2:97:21:46:a4:
69:3b:ee:57:47:4a:ed:fa:26:7c:03:8a:03:0f:48:
b2:69:47:a8:56:60:bf:c5:cb:d7:6d:17:4f:d9:5b:
d5:a8:96:a3:b8:03:aa:f6:2b:82:9e:cb:e8:9c:5c:
39:50:a0:e9:c3:0f:16:44:49:f3:c0:c3:57:99:af:
e4:a5:33:f5:2c:43:a1:5e:7d:00:ef:ab:6d:2b:c5:
70:ae:df:f3:0c:15:0d:70:d9:06:e3:74:fc:2b:db:
26:33:47:ae:31:d2:7b:eb:d5:66:c7:ac:a8:47:e5:
c6:6e:d8:33:e5:fa:13:ac:4d:2c:5f:54:54:0f:02:
08:b3:0c:a1:b1:46:15:c3:91:80:2c:90:54:04:7d:
26:31:43:7d:43:6d:7f:26:4d:3e:f7:43:ba:39:41:
69:c4:b1:8d:62:ac:ab:4c:6c:b6:84:45:51:41:7f:
de:50:8e:9f:b6:87:c4:e3:10:e5:51:7f:f3:0e:49:
93:93:6d:b3:4f:72:1f:b0:57:19:90:1e:7a:15:9c:
01:43:88:e7:7e:6e:01:07:0c:01:76:23:2a:31:a6:
10:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:67:9C:DF:D0:DE:2E:E8:E1:DB:14:53:84:78:D1:28:59:EC:D5:53
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d6:c3:b0:80:57:d0:b5:f3:18:c1:69:81:e2:ef:8c:58:71:
b2:e6:c4:6b:38:5b:10:bf:ed:bd:1e:43:eb:31:2c:91:38:9a:
ee:55:41:42:f7:52:78:e4:25:25:3a:35:1e:b6:6a:36:d2:88:
e4:81:17:aa:b5:b1:02:d3:b1:97:60:c0:00:ec:e1:02:e5:b6:
9f:bb:63:cc:15:fa:66:0d:11:8d:f6:54:b6:54:da:2e:59:b1:
f3:de:9c:5b:c8:7d:90:7d:a8:7d:ba:a5:d3:09:e1:06:cc:ed:
cb:f3:37:32:07:25:b8:a7:7a:59:92:0a:6f:90:63:fd:a4:13:
7a:78:d1:50:28:8d:77:07:81:8f:b8:dc:f6:8f:89:17:a7:46:
f4:47:26:4a:38:80:d4:b0:b4:73:72:0e:a0:0c:d6:8d:cc:e6:
69:47:cc:dd:af:4e:8b:5b:fc:74:7e:f6:f9:4d:41:16:41:da:
41:4e:b8:a1:ff:06:51:18:ed:e0:cd:b4:4d:73:40:f1:ad:c0:
fb:4a:c1:eb:87:3d:20:b2:d4:9c:e0:dc:1e:7f:f0:64:4b:a1:
aa:9b:26:1e:86:ae:61:4b:cc:a0:70:b2:80:e9:30:84:28:92:
9a:49:55:93:ce:fb:80:a8:26:9c:92:0d:06:53:d3:3a:de:d6:
17:57:e3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:44 2025 by rpki-client